12375 : Microsoft Word / Wordpad Font Converter Remote Overflow
Printer | http://osvdb.org/12375 | Email This | Edit Vulnerability

Views This Week

Views All Time

Info

Last Modified

10 months ago

Percent Complete

100%

Disclosure

Dec 14, 2004

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in the Microsoft Word for Windows font Converter within the Microsoft Windows operating systems. The program fails to perform proper bounds checking in ConvertForeignToRtf() resulting in a buffer overflow. With a specially crafted request, an attacker may be able to execute aribtrary code remotely, resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Technical

The vulnerability lies in the underlying converter, which both Word and Wordpad use.

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	98
		Millenium
		NT 4.0
		2000
		2003
		XP

References

Related OSVDB ID: 12373
Secunia Advisory ID: 13462
CVE ID: 2004-0901 (see also: NVD)
Microsoft Knowledge Base Article: 885836
Keyword: Font Conversion Vulnerability
Other Advisory URL: http://www.idefense.com/application/poi/display?id=162&type=vulnerabilities
Microsoft Security Bulletin: MS04-041

Tools & Filters

Nessus	15966

Credit

Lord YuP - loperhushmail.com - sec-labs team

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Technical

Solution

Products

Microsoft Corporation

Windows

References

Tools & Filters

Credit

Blogs

Comments